At Vodafone, we’re working hard to build a better future. A more connected, inclusive and sustainable world. As a dynamic global community, it's our human spirit, together with technology, that empowers us to achieve this. 

We challenge and innovate in order to connect people, businesses, and communities across the world. Delighting our customers and earning their loyalty drive us, and we experiment, learn fast and get it done, together.

With us, you can be truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference.

Join Vodafone Hungary and build a better tomorrow! 

We are looking for a

Vendor Security Expert

for our Technology Team!

Vendor contract review and negotiation with vendors

• Review and validate existing vendor contracts against our company policies and standards.
• Provide recommendations for any necessary changes to align with our company policies and standards
• Negotiate with the vendor regarding the contract modification
• Support local procurement team regarding cyber security issues

Daily operation and risk assessment with the Third party supplier risk management tool

• Onboard new vendors – collect the relevant information from the involved departments
• Manage risk questionaries with the third party management tool
• Support the vendors in each step of risk assessment process to have risk rating for all vendors and services
• Periodically review the vendors about their progress of h fixing the non compliant or partially compliant areas 
• Making sure that the vendor and service statuses are up to date
• Keeping contact with the local procurement team and with the business owners of each vendor in Vodafone
• Start end of service process for the inactive vendors / services
• Execute third party onsite audit according to ISO 27001 requirements 

Manage the Third party supplier risk management tool vendor and the tool

• Contact the Third party supplier risk management tool vendor in case of issues with the tool
• Keeping track the implementation of the Vodafone requested functionalities of the Third party supplier risk management tool 
• Testing the implementation of the new functions in the tool
• Providing Internal training for the new Vodafone users about tool relevant functions

• Must have a strong understanding of information technology and cyber security
• Strong background in security controls and compliance
• Understands industry best standards (ISO27001, NIST standards, OWASP) and have demonstrated knowledge about its requirements
• Have patience to deal with vendors with various level of security knowledge, in phone or in email
• Experience with Third party supplier security risk management basic processes
• Security auditor experience is recommended
• Having relevant security certification is recommended: CISA, ISO 27001 Lead auditor, CISSP or other equivalent security certification
• Proficient in using Microsoft Office applications
• Excellent communication in English and Hungarian
• Outstanding interpersonal skills

• Cafeteria package & bonus or comission
• Laptop & mobile phone (with unlimited voice and data tariff package)
• Hybrid way of working
• Corporate Health Insurance (Swiss Clinic)
• Employee discounts (e.g. Vodaflotta)
• Wellbeing program
• 4 paid days leave/year for charity projects  
• Other discounts (e.g. AYCM card, eye-glass allowance)  
• Learning opportunities (internal trainings)